Support Forums: Message List - Disable Hacking through Cookieshttp://www.theserverside.com
Most recent forum messagesenJive Forums Silver 5.5.30 (www.jivesoftware.com)Sun, 02 Aug 2015 19:04:09 -0400Disable Hacking through Cookieshttp://www.theserverside.com/discussions/thread.tss?thread_id=38065
But the cookies are already in the temporary sessions. I tried to tie it up with ipadress, but the problem is the application will have a performance defect because of checking with ipaddress each time....]]>Thu, 15 Dec 2005 04:24:16 -0500Thu, 15 Dec 2005 04:24:16 -0500Thu, 15 Dec 2005 04:24:16 -0500Dec 15, 2005Gulapala Rajasekhar0Disable Hacking through Cookieshttp://www.theserverside.com/discussions/thread.tss?thread_id=38065
If you are super paranoid, you can tie the cookie value to the client IP address. Still not perfect, but better than nothing.]]>Wed, 14 Dec 2005 23:13:50 -0500Wed, 14 Dec 2005 23:13:50 -0500Wed, 14 Dec 2005 23:13:50 -0500Dec 14, 2005Paul Strack1Disable Hacking through Cookieshttp://www.theserverside.com/discussions/thread.tss?thread_id=38065
Now assume that I have two browser/machines. Let me call A and B. I am use the machines to hack an application where A is the victim and B the...]]>Wed, 14 Dec 2005 00:53:59 -0500Wed, 14 Dec 2005 00:53:59 -0500Wed, 14 Dec 2005 00:53:59 -0500Dec 14, 2005Gulapala Rajasekhar2